Hello everybody! I am a Linux admin trying to move my mail system based on qmail to the software which is more spam-protected: exim4 + dovecot-1.0rc15 + pgsql . I've downloaded and rebuild dovecot from src.rpm (for fc4). During the testing stage I've discovered two troubles: 1) the problem with deliver (...I'm not sure it's a really bug). Here is relevant part of my /var/log/messages : ------- Jan 3 10:40:37 serge deliver(serge at test.net): auth input: serge at test.net Jan 3 10:40:37 serge deliver(serge at test.net): auth input: home=/var/spool/mail/test.net/serge/ Jan 3 10:40:37 serge deliver(serge at test.net): auth input: uid=500 Jan 3 10:40:37 serge deliver(serge at test.net): auth input: gid=12 Jan 3 10:40:37 serge deliver(serge at test.net): setuid(500) failed: Operation not permitted ------- -- my system is fc4 based Linux. uid/gid are according to /etc/dovecot-sql.conf : user_query = SELECT maildir AS home, 500 AS uid, 12 AS gid FROM mailbox WHERE username = '%n@%d' AND active='1' I was trying to chown 500.12 /var/spool/mail -R , chmod u+s ...etc, but it does not helps. Please, help. I don't want another MDA, people adviced me dovecot as good and well tested solution. I have already spent about two work days to configure and test it... 2) Because of mentioned above problem deliver generates a bounce message for exim, and here is a bug with e-mail in the header. It was taken "as is" from the queue of Exim -- have a look at "Return-path:", "envelope-from" and "Sender:" Because of these errors exim can not deliver the message back to sender. It freezes it, ...trying again, ...freezes ... etc... -------------------------------------------------- 1H252L-0004jZ-F3-D This message was created automatically by mail delivery software. A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed: serge at test.net local delivery failed ------ This is a copy of the message, including all the headers. ------ Return-path: <"testuser at test.net"@test.net> Received: from serge.lc.test.net ([10.0.0.5]) by serge.lc.test.net with esmtpa (Exim 4.62) (envelope-from <"testuser at test.net"@test.net>) id 1H252K-0004jT-U5 for serge at test.net; Wed, 03 Jan 2007 14:16:05 +0200 Message-ID: <459B9E84.9070607 at test.net> Date: Wed, 03 Jan 2007 14:16:04 +0200 From: test uset <testuser at test.net> User-Agent: Thunderbird 1.5 (X11/20060119) MIME-Version: 1.0 To: serge at test.net Subject: =?KOI8-R?Q?=D4=C5=D3=D4_=D0=D2=CF=C8=CF=D6=C4=C5=CE=C9=D1? Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 8bit Sender: "testuser at test.net"@test.net Test message body. ------------------------------------ Here is an original message from e-mail client ( just to make sure that it was made proper way): ------------------------------------> From - Wed Jan 03 18:18:54 2007X-Mozilla-Status: 0001 X-Mozilla-Status2: 00800000 Message-ID: <459BD76D.4090903 at test.net> Date: Wed, 03 Jan 2007 18:18:53 +0200 From: test uset <testuser at test.net> User-Agent: Thunderbird 1.5 (X11/20060119) MIME-Version: 1.0 To: serge at test.net Subject: =?KOI8-R?Q?=D4=C5=D3=D4_=D0=D2=CF=C8=CF=D6=C4=C5=CE=C9=D1?Content-Type: text/plain; charset=KOI8-R; format=flowed Content-Transfer-Encoding: 8bit Test message body. ---------------------------------------------------------- As for POP3 with dovecot, it seems working OK. Dovecot generates mail directories according to the user data returned by SQL, and creates index files proper way - everything with given uid.gid = 500.12 ... If you will need some extra piece of information, or my configs or logs -- please feel free to ask for it. Any kind of help: advices, URLs, patches, etc.., are welcome. I badly need to bring up this new system as soon as possible. Thank you in advance. Best regards, Serge www.cis.by -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://dovecot.org/pipermail/dovecot/attachments/20070105/d972a7de/attachment-0002.html>
Serge D wrote:> 1) the problem with deliver (...I'm not sure it's a really bug). Here > is relevant part > of my /var/log/messages : > ------- > Jan 3 10:40:37 serge deliver(serge at test.net <mailto:serge at test.net>): > auth input: serge at test.net <mailto:serge at test.net> > Jan 3 10:40:37 serge deliver(serge at test.net <mailto:serge at test.net>): > auth input: home=//var/spool/mail/test.net/serge// > Jan 3 10:40:37 serge deliver(serge at test.net <mailto:serge at test.net>): > auth input: uid=500 > Jan 3 10:40:37 serge deliver(serge at test.net <mailto:serge at test.net>): > auth input: gid=12 > Jan 3 10:40:37 serge deliver(serge at test.net <mailto:serge at test.net>): > setuid(500) failed: Operation not permitted > -------Deliver is not being run as root, so it cannot change UID to "serge" user... John -- John Peacock Director of Information Research and Technology Rowman & Littlefield Publishing Group 4501 Forbes Boulevard Suite H Lanham, MD 20706 301-459-3366 x.5010 fax 301-429-5748
Dominic Marks
2007-Jan-05 15:29 UTC
[Dovecot] Dovecot's deliver trouble (...probably bug?)
On Fri, 05 Jan 2007 17:16:51 +0200 Serge D <serge at cis.by> wrote:> Hello everybody! > > I am a Linux admin trying to move my mail > system based on qmail to the software which is more spam-protected: > exim4 + dovecot-1.0rc15 + pgsql . I've downloaded and rebuild dovecot > from src.rpm (for fc4). During > the testing stage I've discovered two troubles: > 1) the problem with deliver (...I'm not sure it's a really bug). Here > is relevant part > of my /var/log/messages : > ------- > Jan 3 10:40:37 serge deliver(serge at test.net): auth input: serge at test.net > Jan 3 10:40:37 serge deliver(serge at test.net): auth input: > home=/var/spool/mail/test.net/serge/ > Jan 3 10:40:37 serge deliver(serge at test.net): auth input: uid=500 > Jan 3 10:40:37 serge deliver(serge at test.net): auth input: gid=12 > Jan 3 10:40:37 serge deliver(serge at test.net): setuid(500) failed: > Operation not permittedI'm not a Linux user, but I often see messages like this where various enhanced security packages cause problems, have you ruled these out? Either that or deliver is being run as user with insufficient rights. You shouldn't have to chmod the mail store, the delivery program assumes the appropriate credentials. At least that is how I understand it. Hope this helps, Dominic
Timo Sirainen
2007-Jan-05 18:31 UTC
[Dovecot] Dovecot's deliver trouble (...probably bug?)
On 5.1.2007, at 17.16, Serge D wrote:> Jan 3 10:40:37 serge deliver(serge at test.net): auth input: > serge at test.net > Jan 3 10:40:37 serge deliver(serge at test.net): auth input: home=/ > var/spool/mail/test.net/serge/ > Jan 3 10:40:37 serge deliver(serge at test.net): auth input: uid=500 > Jan 3 10:40:37 serge deliver(serge at test.net): auth input: gid=12 > Jan 3 10:40:37 serge deliver(serge at test.net): setuid(500) failed: > Operation not permitted > ------- > -- my system is fc4 based Linux. uid/gid are according to /etc/ > dovecot-sql.conf : > user_query = SELECT maildir AS home, 500 AS uid, 12 AS gid FROM > mailbox WHERE username = '%n@%d' AND active='1'Configure Exim to start deliver with UID 500. I don't use Exim, so I don't know how.> 2) Because of mentioned above problem deliver generates a bounce > message for exim, and > here is a bug with e-mail in the header. > It was taken "as is" from the queue of Exim -- have a look at > "Return-path:", > "envelope-from" and "Sender:" Because of these errors exim can not > deliver the message back > to sender. It freezes it, ...trying again, ...freezes ... etc.....> Return-path: <"testuser at test.net"@test.net>Since deliver isn't even started, this is probably also an Exim configuration problem. -------------- next part -------------- A non-text attachment was scrubbed... Name: PGP.sig Type: application/pgp-signature Size: 186 bytes Desc: This is a digitally signed message part URL: <http://dovecot.org/pipermail/dovecot/attachments/20070105/c52d7b72/attachment.bin>